CVE-2016-4340
- Source
- https://cve.org/CVERecord?id=CVE-2016-4340
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-4340.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2016-4340
- Downstream
- Published
- 2017-01-23T21:59:01.487Z
- Modified
- 2026-04-10T03:52:21.818830Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The impersonate feature in Gitlab 8.7.0, 8.6.0 through 8.6.7, 8.5.0 through 8.5.11, 8.4.0 through 8.4.9, 8.3.0 through 8.3.8, and 8.2.0 through 8.2.4 allows remote authenticated users to "log in" as any other user via unspecified vectors.
- References
Affected packages
Git / gitlab.com/gitlab-org/gitlab
Affected ranges
- Type
- GIT
- Repo
- https://gitlab.com/gitlab-org/gitlab
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "8.2.0" }, { "introduced": "0" }, { "last_affected": "8.2.1" }, { "introduced": "0" }, { "last_affected": "8.2.2" }, { "introduced": "0" }, { "last_affected": "8.2.3" }, { "introduced": "0" }, { "last_affected": "8.2.4" }, { "introduced": "0" }, { "last_affected": "8.3.0" }, { "introduced": "0" }, { "last_affected": "8.3.1" }, { "introduced": "0" }, { "last_affected": "8.3.2" }, { "introduced": "0" }, { "last_affected": "8.3.3" }, { "introduced": "0" }, { "last_affected": "8.3.4" }, { "introduced": "0" }, { "last_affected": "8.3.5" }, { "introduced": "0" }, { "last_affected": "8.3.6" }, { "introduced": "0" }, { "last_affected": "8.3.7" }, { "introduced": "0" }, { "last_affected": "8.3.8" }, { "introduced": "0" }, { "last_affected": "8.4.0" }, { "introduced": "0" }, { "last_affected": "8.4.1" }, { "introduced": "0" }, { "last_affected": "8.4.2" }, { "introduced": "0" }, { "last_affected": "8.4.3" }, { "introduced": "0" }, { "last_affected": "8.4.4" }, { "introduced": "0" }, { "last_affected": "8.4.5" }, { "introduced": "0" }, { "last_affected": "8.4.6" }, { "introduced": "0" }, { "last_affected": "8.4.7" }, { "introduced": "0" }, { "last_affected": "8.4.8" }, { "introduced": "0" }, { "last_affected": "8.4.9" }, { "introduced": "0" }, { "last_affected": "8.5.0" }, { "introduced": "0" }, { "last_affected": "8.5.1" }, { "introduced": "0" }, { "last_affected": "8.5.2" }, { "introduced": "0" }, { "last_affected": "8.5.3" }, { "introduced": "0" }, { "last_affected": "8.5.4" }, { "introduced": "0" }, { "last_affected": "8.5.5" }, { "introduced": "0" }, { "last_affected": "8.5.6" }, { "introduced": "0" }, { "last_affected": "8.5.7" }, { "introduced": "0" }, { "last_affected": "8.5.8" }, { "introduced": "0" }, { "last_affected": "8.5.9" }, { "introduced": "0" }, { "last_affected": "8.5.10" }, { "introduced": "0" }, { "last_affected": "8.5.11" }, { "introduced": "0" }, { "last_affected": "8.6.0" }, { "introduced": "0" }, { "last_affected": "8.6.1" }, { "introduced": "0" }, { "last_affected": "8.6.2" }, { "introduced": "0" }, { "last_affected": "8.6.3" }, { "introduced": "0" }, { "last_affected": "8.6.4" }, { "introduced": "0" }, { "last_affected": "8.6.5" }, { "introduced": "0" }, { "last_affected": "8.6.6" }, { "introduced": "0" }, { "last_affected": "8.6.7" }, { "introduced": "0" }, { "last_affected": "8.7.0" } ] }
Affected versions
v1.*
v1.2.0
v1.2.0pre
v1.2.1
v1.2.2
v2.*
v2.3.0
v2.3.0pre
v2.3.1
v2.4.0
v2.4.0pre
v2.4.1
v2.5.0
v2.6.0
v2.6.0pre
v2.6.1
v2.6.2
v2.6.3
v2.7.0
v2.7.0pre
v2.8.0
v2.8.0pre
v2.8.1
v2.8.2
v2.9.0
v2.9.1
v3.*
v3.0.0
v3.0.1
v3.0.2
v3.0.3
v3.1.0
v4.*
v4.0.0
v4.0.0rc1
v4.0.0rc2
v5.*
v5.0.0
v5.1.0
v5.2.0
v6.*
v6.0.0-ee
v6.0.0-ee.beta
v6.0.0-ee.rc1
v6.1.0-ee
v6.3.0-ee
v6.3.1-ee
v6.4.0-ee
v6.5.0-ee
v6.6.0-ee
v6.7.0-ee
v6.7.0.rc1-ee
v6.8.0-ee
v7.*
v7.0.0-ee
v7.1.0-ee
v7.1.0.rc1-ee
v7.2.0.rc1-ee
v7.2.0.rc2-ee
v7.2.0.rc3-ee
v7.2.0.rc4-ee
v7.2.0.rc5-ee
v7.3.0-ee
v7.3.0.rc1-ee
v8.*
v8.2.0-ee
v8.2.0.rc1-ee
v8.2.0.rc2-ee
v8.2.1-ee
v8.2.2-ee
v8.2.3-ee
v8.2.4-ee
v8.3.0-ee
v8.3.0.rc1-ee
v8.3.0.rc2-ee
v8.3.0.rc3-ee
v8.3.1-ee
v8.3.2-ee
v8.3.3-ee
v8.3.4-ee
v8.3.5-ee
v8.3.6-ee
v8.3.7-ee
v8.3.8-ee
v8.4.0-ee
v8.4.0-rc2-ee
v8.4.0-rc3-ee
v8.4.0.rc1-ee
v8.4.1-ee
v8.4.2-ee
v8.4.3-ee
v8.4.4-ee
v8.4.5-ee
v8.4.6-ee
v8.4.7-ee
v8.4.8-ee
v8.4.9-ee
v8.5.0-ee
v8.5.0-rc1-ee
v8.5.0-rc2-ee
v8.5.0-rc3-ee
v8.5.0-rc4-ee
v8.5.1-ee
v8.5.1.DBee
v8.5.10-ee
v8.5.11-ee
v8.5.2-ee
v8.5.3-ee
v8.5.4-ee
v8.5.5-ee
v8.5.5-rc1-ee
v8.5.6-ee
v8.5.7-ee
v8.5.8-ee
v8.5.9-ee
v8.6.0-ee
v8.6.0-rc1-ee
v8.6.0-rc2-ee
v8.6.0-rc3-ee
v8.6.0-rc4-ee
v8.6.0-rc5-ee
v8.6.1-ee
v8.6.2-ee
v8.6.3-ee
v8.6.4-ee
v8.6.5-ee
v8.6.6-ee
v8.6.7-ee
v8.7.0-ee
v8.7.0-rc4-ee
v8.7.0-rc5-ee
v8.7.0-rc6-ee
v8.7.0-rc7-ee